Debian Security Advisory 633-1 – Peter Samuelson, upstream maintainer of bmv, a PostScript viewer for SVGAlib, discovered that temporary files are created in an insecure fashion. A malicious local user could cause arbitrary files to be overwritten by a symlink attack.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/35677/dsa-633.txt
Source: https://packetstormsecurity.com/files/35677/dsa-633.txt.html